Security Engineer

📋 Description

• • Own end-to-end security testing for JioStar’s flagship web and mobile products that entertain 750 million viewers every week—your work will directly protect the data and trust of hundreds of millions of users across India and beyond.
• • Perform deep-dive manual and automated security assessments on web, Android, and iOS applications built on micro-service architectures, uncovering vulnerabilities that static scanners miss and crafting creative attack scenarios that mirror real-world adversaries.
• • Embed security into every phase of the SDLC by partnering with product managers, designers, backend engineers, and DevOps from the first whiteboard sketch through production deployment, ensuring that “secure by design” is more than a slogan.
• • Threat-model new features such as payment-gateway integrations, authentication flows, and live-streaming capabilities, mapping data flows, trust boundaries, and potential abuse cases before a single line of code is written.
• • Build and maintain a living threat landscape document that evolves with each sprint, giving leadership a clear, prioritized view of risks and the business impact of every remediation decision.
• • Drive platform-wide vulnerability management: triage findings from bug-bounty programs, internal red-team exercises, and automated tooling; reproduce issues; provide crisp, actionable remediation guidance; and verify fixes to prevent regression.
• • Automate repetitive security tasks by scripting in Python, Go, or NodeJS—because you’re “lazy” in the best possible way—freeing yourself to focus on higher-order problems and accelerating detection from days to minutes.
• • Champion a security-first culture across JioStar by running internal workshops, writing developer-friendly secure-coding guidelines, and embedding security checkpoints in CI/CD pipelines so that every engineer becomes a security engineer.
• • Stay ahead of the curve by researching emerging threats in cloud-native environments, mobile operating systems, and DRM technologies, then translate that research into practical defenses that keep pirates and fraudsters at bay.
• • Influence product strategy by presenting risk-based recommendations to senior leadership, ensuring that security investments align with business growth and user-experience goals.
• • Contribute back to the security community through conference talks, open-source tools, or blog posts—JioStar will proudly amplify your voice on the global stage.
• • Work in a fast-paced, high-impact environment where your ideas are heard, your code ships weekly, and your defenses protect the stories and sports that ignite the dreams of a nation.